CVE-2007-1882

Currently unrated

Key Information:

Vendor: HP
Status: Mercury Quality Center
Vendor: CVE Published:; 6 April 2007

Summary

qcbin/servlet/tdservlet/TDAPI_GeneralWebTreatment in HP Mercury Quality Center 9.0 build 9.1.0.4352 allows remote authenticated users to execute arbitrary SQL commands via the RunQuery method.

References

http://secunia.com/advisories/24730

third-party-advisoryx_refsource_SECUNIA

http://osvdb.org/34630

vdb-entryx_refsource_OSVDB

http://lists.grok.org.uk/pipermail/full-disclosure/2007-A...

mailing-listx_refsource_FULLDISC

Timeline

Vulnerability published
Apr 6, 2007
Vulnerability Reserved
Apr 5, 2007